Hi,
I'm trying to build signed image for MCXN546 using NXP secure provisioning tool.
When I'm generating 4 ROT+IMG keys everything works well. However, when I'm using a single key, "Write Image" step fails. I suspect the tool generate wrong certificate block for images with single ROT+IMG keys.
Can you please verify this?
Thanks
Hello Assaf,
I confirm this bug in the SEC v8, that is fixed in the upcoming v9 (stay tuned this week). The unused key slots must be configured in the CMPA - v9 takes the care, while in the v8 you have to do it manually in the RoTK_USAGE register:
I recommend to wait for SEC v9.
Using just 1 key seems like corner case and I'm interested about the use case; recommended is to use all 4 slots to be able do key revocation in the future.
Best regards,
Libor
Attached image is wrong. here is the correct screenshot:
